Intoto's Firewall technology in the iGateway software platforms provides stateful packet inspection, content filtering, protection from internal attacks, Web traffic redirection and Web based configuration. It is robust technology that protects the ‘always-on’ broadband connection at home or office networks.

iGateway has a proprietary CyberDefense Engine that protects internal and DMZ networks from all known Internet attacks. iGateway provides protection from Denial of Service (DoS) attacks such as SYN flooding, IP smurfing, LAND, Ping of Death and all reassembly attacks. iGateway Firewall performs NAT (basic, enhanced, service, reverse and 40+ Application Level Gateways) that enables the users to connect multiple computers to the Internet and port forwarding to run servers (Web server, mail server, etc.) behind the firewall.


iGateway Firewall Technology Components

  • Cyber Defense Engine
  • Stateful Inspection Engine
  • NAT and NAPT with comprehensive ALG support
  • Administration and Management
  • Event Logger (syslog and email)

iGateway Firewall Technology Features


  • URL filtering based on keyword
  • System-wide access policies
  • Countering cyber attacks
  • Remote user authentication
  • Stealth mode
  • E-mail alerts
  • Syslog support for event logging
  • Comprehensive network access statistics
  • NAT and NAPT, many-to-1 NAT, 1-to-1 NAT, reverse NAT, dynamic NAT
  • ALGs for all popular games, chat applications such as instant messenger as well as for PPTP, IPsec and IKE
  • High availability support functionality enables replicating 'independent' firewall sessions information on backup device
  • Defense against 50+ attacks such as LAND attack, smurf attack and reassembly attacks
  • Application content filtering for applications such as HTTP, FTP, SMTP and RPC
  • Connection as well as packet/byte rate limiting

Multiple Secure Networks

iGateway Firewall supports several secure networks called SNets (virtual systems) with network specific inbound and outbound policies. These policies are configurable per network, based on parameters including services, source and destination IP address, range or subnet IP address and time window. iGateway Firewall supports access policies for SNet to external network, vice versa, intra-SNet network and inter-SNet networks.


Cyber Defense Engine

iGateway Firewall uses a proprietary Cyber Defense Engine that protects internal and DMZ networks from all known Internet attacks.  iGateway Firewall provides automatic protection from Denial of Service (DoS) attacks such as SYN flooding, IP smurfing, LAND, Ping of Death and all reassembly attacks.  For example, a security device with iGateway Firewall provides protection from "WinNuke," a widely available DoS tool used to remotely crash any unprotected Windows PC.  iGateway Firewall provides protection from a variety of common Internet atacks including Mimeflood, Octopus, Teardrop, Jolt, Tentacle, etc.


Application Content Filtering

iGateway Firewall has the capability of active content filtering on certain application protocols such as HTTP, FTP, SMTP and RPC. An administrator can define HTTP content filtering schemes for blocking ActiveX, Java and URLs based on file extensions. FTP content filtering allows one to define and enforce the file transfer policy for the site or group of users. With SMTP, operations such as VRFY and EXPN that reveal excess information about the recipient, can be selectively filtered out.